1 / 152

Montréal Qu é bec 13 September 2011

Montréal Qu é bec 13 September 2011. Self Introductions. Name? Organization? ARIN topic that you are especially interested in?. History of ARIN and Internet Governance. Einar Bohlin Senior Policy Analyst. What is an RIR?.

verda
Download Presentation

Montréal Qu é bec 13 September 2011

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Montréal Québec 13 September 2011

  2. Self Introductions • Name? • Organization? • ARIN topic that you are especially interested in?

  3. History of ARIN and Internet Governance Einar Bohlin Senior Policy Analyst

  4. What is an RIR? • An RIR is an organization that manages the allocation and registration of Internet number resources within a particular region of the world. • Internet number resources include IP addresses and autonomous system (AS) numbers.

  5. Regional Internet Registries

  6. Historical Timeline Government Oversight InterNIC DDN NIC DDN NIC DDN NIC

  7. Historical Timeline Community Oversight

  8. RIR Structure

  9. RIR Services

  10. Number Resource Organization The NRO exists to protect the unallocated number resource pool, to promote and protect the bottom-up policy development process, and to act as a focal point for Internet community input into the RIR system.

  11. Who Provisions IP Addresses and ASNs?

  12. Number Resource Provisioning Hierarchy ICANN / IANA (Internet Assigned Numbers Authority) Manage global unallocated IP address pool Allocate RIRs (AfriNIC, APNIC, ARIN, LACNIC, RIPE NCC) Manage regional unallocated IP address pool Allocate Assign ISPs End Users Re-Allocate Re-Assign End Users ISPs

  13. Internet Governance

  14. "Applying the principles of stewardship, ARIN, a nonprofit corporation, allocates Internet Protocol resources; develops consensus-based policies; and facilitates the advancement of the Internet through information and educational outreach."

  15. About ARIN • One of five Regional Internet Registries (RIRs) • Established December 1997 • Provides services related to the technical coordination and management of Internet number resources • Services the US, Canada, and 22 economies in the Caribbean • Is a non-profit, community-based organization governed by a member-elected executive board

  16. ARIN’s Service Region ARIN’s region includesCanada, many Caribbean and North Atlantic islands, and the United States.

  17. ARIN’s Core Services • Like the other RIRs, ARIN: • Allocates and assigns Internet number resources • Maintains Whois, in-addr.arpa, and other technical services • Facilitates policy development • Provides training, education and outreach • Participates in the global Internet community

  18. ARIN on Social Media www.TeamARIN.net www.facebook.com/TeamARIN www.twitter.com/TeamARIN www.linkedin.com/groups?gid=834217 www.youtube.com/TeamARIN

  19. Q&A

  20. Requesting and Managing Internet Number Resources through ARIN Online Jon Worley Senior Resource Analyst

  21. Overview • Request and Manage Number Resources • Recently Added ARIN Online Functionality • RESTful Provisioning • Recently Implemented Policies • Status of IPv4 • Future Services

  22. Major Changes in Functionality • Reverse DNS Zone Management • DNSSEC • Resource Requests • POC Validation • View Invoices

  23. Reverse DNS • All reverse zones managed individually now • All zone management takes place inside ARIN Online or via REST calls (no templates!)

  24. Reverse DNS in ARIN Online

  25. Reverse DNS in ARIN Online

  26. Querying ARIN’s Whois Query for the zone directly: whois> 81.147.204.in-addr.arpa Name: 81.147.204.in-addr.arpa. Updated: 2006-05-15 NameServer: AUTHNS2.DNVR.QWEST.NET NameServer: AUTHNS3.STTL.QWEST.NET NameServer: AUTHNS1.MPLS.QWEST.NET Ref: http://whois.arin.net/rest/rdns/81.147.204.in-addr.arpa.

  27. Reverse DNS • ARIN issues blocks without any working DNS • Must establish delegations after registration

  28. Reverse DNS • Authority to manage reverse zones follows SWIP • “Shared Authority” model

  29. Reverse DNS - Shared Authority Joe’s Bar and Grill has reassigned a /24 to HELLO WORLD. Both can manage the /24 zone.

  30. DNSSEC • Same interface as reverse DNS • DS records generated by user • Zone must have nameservers before you can add DS records

  31. Paste DS Record • Parse DS Record • Apply

  32. Requesting IP addresses & ASNs • Via ARIN Online only • Officer attestation for IP requests now done via a signed form (instead of email) • Can no longer specify resource POCs or reverse DNS delegation in request

  33. Annual POC Validation • Annual validation of each POC handle required (NRPM 3.6) • If an ARIN Online account is linked to any POC that has been unvalidated for 60+ days, the system forces validation by preventing the account from performing normal actions.

  34. View Invoices • Can now view paid and open invoices via ARIN Online • Goes back 2 years • Available to Admin, Tech, and Billing POC

  35. Template Changes • Resource request templates deprecated • Transfers and SWIPs still done with templates • API key required to authorize processing • Generated via ARIN Online • https://www.arin.net/features/api_keys.html

  36. RESTful Interface • Programmatic way to interact with ARIN • Intended to be used for automation • Not meant to be used by humans • Useful for ISPs that manage a large number of SWIP records • Requires an investment of time to achieve those benefits

  37. Example – Reassign Detailed • Your automated system issues a PUT call to ARIN using the following URL: https://www.arin.net/rest/net/NET-10-129-0-0-1/reassign?apikey=API-1234-5678-9ABC-DEFG <net xmlns="http://www.arin.net/regrws/core/v1" >      <version>4</version>      <comment></comment>      <registrationDate></registrationDate>      <orgHandle>HW-1</orgHandle>      <handle></handle>      <netBlocks>            <netBlock>                  <type>A</type>                  <description>Reassigned</description>                  <startAddress>10.129.0.0</startAddress>                  <endAddress>10.129.0.255</endAddress>                  <cidrLength>24</cidrLength>            </netBlock>      </netBlocks>      <parentNetHandle>NET-10-129-0-0-1</parentNetHandle>      <netName>HELLOWORLD</netName>      <originASes></originASes>      <pocLinks></pocLinks></net> The call contains the following data:

  38. Example – Reassign Detailed ARIN’s web server returns the following to your automated system: <net xmlns="http://www.arin.net/regrws/core/v1" > <version>4</version> <comment></comment> <registrationDate>Tue Jan 25 16:17:18 EST 2011</registrationDate> <orgHandle>HW-1</orgHandle> <handle>NET-10-129-0-0-2</handle> <netBlocks> <netBlock> <type>A</type> <description>Reassigned</description> <startAddress>10.129.0.0</startAddress> <endAddress>10.129.0.255</endAddress> <cidrLength>24</cidrLength> </netBlock> </netBlocks> <parentNetHandle>NET-10-129-0-0-1</parentNetHandle> <netName>netName>HELLOWORLD</netName> <originASes></originASes> <pocLinks></pocLinks> </net> Reg date and net handle added

  39. Other RESTful Notes • IPv6 Reassign Simple available only through the RESTful interface • Still operating RESTful beta site as a test bed • Must request access

  40. Obtaining RESTful Assistance • ARIN Online’s ASK ARIN feature • arin-tech-discuss mailing list • Make sure to subscribe • Someone on the list will help you ASAP • Registration Services Help Desk telephone not a good fit • Debugging these problems requires a detailed look at the method, URL, and payload being used

  41. Number Resource Policies and Procedures

  42. 3 Month Supply For ISPs • Prior to IANA IPv4 exhaustion, experienced ISPs could get a 12 month supply • Dropped to 3 month supply immediately upon IANA exhaustion • Still computed based on demonstrated utilization rate

  43. IPv6 End-user Changes • Before: Block size based on HD-Ratio • Complex (used logarithms) • After: Block size based solely on number of sites within a network

  44. Results of End-user Policy Change Small uptick in large blocks, but majority still /48

  45. Better IPv6 Allocation for ISPs • To be implemented no later than 15 February 2012 • Allows ISPs to have uniform subnets • Each “serving site” gets a block large enough to number the largest serving site • Must be nibble-aligned: /48, /44, /40, etc

  46. Example • An ISP has 37 PoPs • The largest PoP has 1,084 customers • Wants to assign a /48 to each customer • /37 smallest block that has 1,084 /48s (2,048) • Each of the 37 PoPs gets a /36 (round to nibble) • Smallest block that contains 37 /36s is a /30 (64 /36s) • ISP A gets a /28 (round to nibble)

  47. Standardize IP Reassignment Registration Requirements • To be implemented by 30 September 2011 • Abuse contact will be required for all ORGs • New policies for ISPs with residential customers that dynamically draw IP addresses from pools • must submit SWIP information for each market area • must show 80% assigned with a 50-80% utilization rate across markets • IPv6 /64 and larger static reassignments must be visible via SWIP/RWhois

  48. IPv6 Subsequent Allocations for Transitional Technologies • ISPs with an initial allocation for native IPv6 can request a separate block to be used for IPv4 -> IPv6 transitional technology • 6rd is the most common example, but the policy doesn’t specify a technology • /24 maximum allocation • Allows a typical ISP to map a /56 to each of their existing IPv4 addresses in a 6rd deployment

More Related